PT-2012-3205 · Cisco · Cisco Unified Computing System

Published

2012-08-06

Updated

2018-10-30

CVE-2012-1364

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Cisco Unified Computing System (UCS) versions 1.4 through 2.0

Description The issue allows remote authenticated users to cause a denial of service, resulting in a device reload, by sending a malformed SNMP request to a Fabric Interconnect device.

Recommendations For versions 1.4 through 2.0, consider restricting access to the SNMP service on the Fabric Interconnect device to minimize the risk of exploitation. As a temporary workaround, limit the ability of remote authenticated users to send SNMP requests to the device until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2012-1364

Affected Products

Cisco Unified Computing System

PT-2012-3205 · Cisco · Cisco Unified Computing System

CVE-2012-1364

Related Identifiers

Affected Products

References · 2